Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

Open5GS denial of service vulnerability (CVE-2026-7535)

Jason Davies 495 Views 0 Comments 0 min read

– A vulnerability was found in Open5GS up to 2.7.7.

Read More
NewsSecurity Vulnerabilities

Oracle VirtualBox SoundBlaster 16 Race Condition Local Privilege Escalation Vulnerability (CVE-2026-35230)

Jason Davies 395 Views 0 Comments 0 min read

– This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox.

Read More
NewsSecurity Vulnerabilities

Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2026-5726)

Luke Simmonds 402 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics ASDA-Soft.

Read More
NewsSecurity Vulnerabilities

Docker Desktop Enhanced Container Isolation Exposed Dangerous Function Local Privilege Escalation Vulnerability (CVE-2026-6406)

Luke Simmonds 570 Views 0 Comments 0 min read

– This vulnerability allows local attackers to escalate privileges on affected installations of Docker Desktop.

Read More
NewsSecurity Vulnerabilities

Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration (CVE-2026-0234)

Kerry Dean 342 Views 0 Comments 0 min read

CVE number = CVE-2026-0234 An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during

Read More
NewsSecurity Vulnerabilities

Ongoing campaign exploiting vulnerabilities in Cisco VPN devices

Jason Davies 602 Views 0 Comments 2 min read

– An attacker attributed to ArcaneDoor campaign has exploited CVE-2025-20333, CVE-2025-20362, and CVE-2025-20363 to install a sophisticated bootkit for persistent stealthy access to affected devices.

Read More
NewsSecurity Vulnerabilities

DriveLock Directory Traversal Information Disclosure Vulnerability (CVE-2026-5492)

Jason Davies 436 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to disclose sensitive information on affected installations of DriveLock.

Read More
NewsSecurity NewsSecurity Vulnerabilities

Supply Chain Compromise Impacts Axios Node Package Manager​

Luke Simmonds 666 Views 0 Comments 2 min read

– The Cybersecurity and Infrastructure Security Agency (CISA) released an alert to provide guidance in response to the software supply chain compromise of the Axios node package manager (npm). Axios is an HTTP client for JavaScript that developers commonly use in Node.js and browser environments. 

Read More
NewsSecurity Vulnerabilities

Fortinet FortiWeb cat_cgi_paths Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2026-40688)

Luke Simmonds 580 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fortinet FortiWeb. Authentication is required to exploit this vulnerability.

Read More
NewsSecurity Vulnerabilities

Samsung MagicINFO 9 Server Incorrect Default Permissions Local Privilege Escalation Vulnerability (CVE-2026-25203)

Jason Davies 388 Views 0 Comments 0 min read

CVE number = CVE-2026-25203 This vulnerability allows local attackers to escalate privileges on affected installations of Samsung MagicINFO 9 Server.

Read More